Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/MHN9gVWmuevNGKZtRdO3nVMzgrI.roa
File: MHN9gVWmuevNGKZtRdO3nVMzgrI.roa (raw, json)
Hash identifier: xrdPC0Dt6L4MZ4ho0G2SJp9E834vsal3OQRoz2+NdSw=
Subject key identifier: 30:73:7D:81:55:A6:B9:EB:CD:18:A6:6D:45:D3:B7:9D:53:33:82:B2
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018A82D7C137DBDC1F2D2BD97FF77B2CABC6
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/MHN9gVWmuevNGKZtRdO3nVMzgrI.roa
Signing time: Mon 11 Sep 2023 06:04:52 +0000
ROA not before: Mon 11 Sep 2023 06:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.219.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.228.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.233.0/24 maxlen: 24
84.32.236.0/23 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.238.0/24 maxlen: 24
84.32.234.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.241.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.249.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.252.0/24 maxlen: 24
84.32.247.0/24 maxlen: 24
84.32.254.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.58.0/24 maxlen: 24
84.32.61.0/24 maxlen: 24
84.32.62.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.65.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.76.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.83.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
84.32.93.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
84.32.105.0/24 maxlen: 24
84.32.4.0/24 maxlen: 24
84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.9.0/24 maxlen: 24
84.32.14.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.23.0/24 maxlen: 24
84.32.20.0/24 maxlen: 24
84.32.22.0/24 maxlen: 24
84.32.27.0/24 maxlen: 24
84.32.28.0/24 maxlen: 24
84.32.29.0/24 maxlen: 24
84.32.25.0/24 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
84.32.43.0/24 maxlen: 24
84.32.51.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.49.0/24 maxlen: 24
84.32.50.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.176.0/24 maxlen: 24
84.32.179.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.210.0/24 maxlen: 24
84.32.211.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.107.0/24 maxlen: 24
84.32.108.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.155.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.187.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.106.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.129.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.222.0/24 maxlen: 24
88.216.223.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.228.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.66.0/24 maxlen: 24
88.216.67.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.95.0/24 maxlen: 24
88.216.92.0/24 maxlen: 24
88.216.101.0/24 maxlen: 24
88.216.102.0/24 maxlen: 24
88.216.104.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.2.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.36.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.42.0/24 maxlen: 24
88.216.43.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Sep 2023 13:36:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:82:d7:c1:37:db:dc:1f:2d:2b:d9:7f:f7:7b:2c:ab:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 11 06:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30737d8155a6b9ebcd18a66d45d3b79d533382b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:98:ea:ac:67:72:b5:64:51:7d:17:97:07:d1:
06:3a:71:80:4d:66:b4:68:e7:98:91:89:f7:81:e0:
7d:ca:1f:50:3e:e9:38:09:69:90:ea:34:ac:67:fa:
b0:9d:21:e1:d5:2a:b7:4d:eb:9b:34:5d:76:b3:dc:
2c:cf:2e:22:d8:2f:8f:16:2d:ac:97:99:95:46:18:
28:68:2a:28:d0:8c:e5:b2:a2:a0:be:a9:03:e9:18:
01:87:c4:c4:20:00:b0:65:a0:18:47:ac:cc:04:f1:
b1:5c:71:0d:99:d9:03:cf:c6:a4:e6:5d:26:67:fe:
29:fa:36:df:43:38:1a:66:9f:c0:6d:7d:f8:4e:4b:
76:c8:64:72:55:3b:60:49:06:f4:5b:96:8e:a7:dc:
69:cb:be:21:c5:a6:6a:62:46:d8:14:b2:c5:f8:6c:
a3:5a:d2:f7:a9:8a:61:5f:ac:39:55:bf:c9:8c:27:
83:49:80:6d:c2:d6:d5:bd:b2:79:6d:2e:3c:c5:2f:
1d:29:f7:c3:05:b0:4a:72:26:ea:53:a3:86:6a:4a:
ca:79:75:cd:a1:7f:df:78:26:66:a9:d8:26:04:4c:
b9:43:16:bf:09:22:28:b1:db:34:d6:6c:b9:8d:2c:
12:1c:93:1e:62:a8:64:60:7e:b2:bd:8d:17:5a:b8:
3d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:73:7D:81:55:A6:B9:EB:CD:18:A6:6D:45:D3:B7:9D:53:33:82:B2
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/MHN9gVWmuevNGKZtRdO3nVMzgrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0/24
84.32.7.0-84.32.9.255
84.32.14.0/24
84.32.20.0-84.32.29.255
84.32.31.0/24
84.32.43.0/24
84.32.46.0/23
84.32.49.0-84.32.51.255
84.32.58.0/24
84.32.60.0-84.32.62.255
84.32.64.0-84.32.68.255
84.32.76.0/23
84.32.83.0/24
84.32.88.0-84.32.90.255
84.32.92.0-84.32.94.255
84.32.105.0/24
84.32.107.0-84.32.110.255
84.32.148.0/22
84.32.153.0/24
84.32.155.0/24
84.32.157.0-84.32.159.255
84.32.174.0-84.32.176.255
84.32.178.0/23
84.32.210.0-84.32.215.255
84.32.219.0/24
84.32.221.0/24
84.32.224.0-84.32.226.255
84.32.228.0/24
84.32.232.0-84.32.242.255
84.32.244.0/22
84.32.249.0-84.32.255.255
88.216.0.0/22
88.216.16.0/24
88.216.22.0/23
88.216.35.0-88.216.36.255
88.216.40.0/24
88.216.42.0-88.216.45.255
88.216.58.0/24
88.216.60.0-88.216.67.255
88.216.92.0/23
88.216.95.0/24
88.216.101.0-88.216.102.255
88.216.104.0/22
88.216.109.0-88.216.111.255
88.216.128.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.187.0-88.216.191.255
88.216.197.0-88.216.198.255
88.216.208.0/24
88.216.211.0-88.216.215.255
88.216.220.0/24
88.216.222.0/23
88.216.228.0/22
88.216.236.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:c5:09:2e:45:fa:9d:3a:f6:4b:bf:54:6e:a5:30:dc:b5:9a:
52:a3:ab:d0:d2:22:a7:46:ff:a9:b0:47:37:45:a1:d4:62:34:
96:85:32:31:c1:6f:57:e4:fb:44:86:db:6a:dc:8e:7f:f9:1b:
a9:74:75:6b:8c:1f:9d:5d:1d:6b:ca:16:27:e8:8e:99:3e:d1:
12:9b:a0:aa:03:79:41:40:56:07:58:29:84:41:49:e5:ac:49:
2a:98:bf:ca:b5:43:01:2c:5f:7d:fb:4a:32:c7:70:93:cc:20:
94:8b:1e:53:de:de:7b:aa:63:59:b1:c1:24:8c:55:0e:69:c9:
3a:ae:7f:f1:51:10:83:5f:b0:e9:4b:b3:15:96:17:e0:29:4e:
a0:9f:ce:b6:ec:9e:68:1b:29:e3:32:5e:8a:85:0f:34:61:d1:
dd:64:c8:0f:fa:ce:f0:24:fd:39:98:7a:00:39:50:83:ce:62:
44:33:48:9b:e6:cf:8c:2a:b4:5a:3d:9b:aa:46:6e:cd:fc:d1:
a2:ef:eb:be:b6:e7:66:92:1b:ec:ca:96:57:69:9e:60:c4:2f:
d0:1b:14:57:92:c9:f2:5f:4e:63:ec:05:88:f8:d6:52:7c:3d:
ab:c4:0c:91:37:28:74:46:30:2e:de:ae:7f:78:95:7c:82:54:
ba:67:c9:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:26 2024 by rpki-client on console-ams.rpki-client.org